cosmoscrew / ssrf-playgroundView external linksLinks
A playground to practice SSRF Attacks against web apps
☆17Oct 15, 2018Updated 7 years ago
Alternatives and similar repositories for ssrf-playground
Users that are interested in ssrf-playground are comparing it to the libraries listed below
Sorting:
- A tool that can help detect and takeover subdomains with dead DNS records☆12Aug 23, 2018Updated 7 years ago
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- Simple webinterface combining different recon tools.☆12Mar 2, 2018Updated 7 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Dec 12, 2018Updated 7 years ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 5 years ago
- Fuzzing Framework☆10Oct 23, 2017Updated 8 years ago
- the Open Source Windows Privilege Escalation Guide☆10Mar 16, 2017Updated 8 years ago
- Golang code to crawl website, extract links from html, paths from JavaScript code, follow and repeat.☆12Jun 4, 2018Updated 7 years ago
- Resolve Skype accounts by phone number with API interface☆13Jul 16, 2023Updated 2 years ago
- BASH + VIM = Cryptolocker☆11Jul 31, 2018Updated 7 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆13Mar 5, 2021Updated 4 years ago
- Scan and categorize websites for rapid triage☆12Jun 23, 2022Updated 3 years ago
- certstream + analytics☆11Jan 17, 2020Updated 6 years ago
- Automatically extracts API Keys from APK files☆13Feb 1, 2022Updated 4 years ago
- Chef repository for pentesting tools☆13Mar 4, 2017Updated 8 years ago
- Repository with research related to Android☆13Jul 17, 2018Updated 7 years ago
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Jun 4, 2022Updated 3 years ago
- ☆16Nov 15, 2022Updated 3 years ago
- Collection of scripts that aid in penetration testing of JSON Web Tokens☆59Feb 2, 2019Updated 7 years ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- ☆36Mar 19, 2022Updated 3 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Jul 10, 2020Updated 5 years ago
- A modular URL deduplication tool.☆19Feb 19, 2025Updated 11 months ago
- Alpha version code of Recon UI☆15Feb 26, 2018Updated 7 years ago
- Example agents for the Dreadnode platform☆22Dec 19, 2025Updated last month
- Fork of iSec Partners Android Intent Fuzzer (https://www.isecpartners.com/tools/mobile-security/intent-fuzzer.aspx)☆16Feb 10, 2015Updated 11 years ago
- HTTP Request Translator (hrt) translates raw HTTP requests to different scripts (bash, python, etc.)☆17Feb 24, 2017Updated 8 years ago
- Albatar is a SQLi exploitation framework in Python☆137Jan 24, 2025Updated last year
- ☆36Sep 12, 2018Updated 7 years ago
- Practice Web App written in python with some vulnerabilities.☆34Mar 19, 2021Updated 4 years ago
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Apr 25, 2025Updated 9 months ago
- SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.☆31Jan 8, 2018Updated 8 years ago
- Pipe nmap verbose output to a usable format for httpx or host:port notation.☆17Jul 7, 2022Updated 3 years ago
- ☆12Oct 16, 2017Updated 8 years ago
- Python framework for manipulating bulk WHOIS data from RIRs☆22Jan 8, 2026Updated last month
- Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Hunters☆17Aug 1, 2020Updated 5 years ago
- Jar2Exe extraction tool☆15Dec 28, 2022Updated 3 years ago
- Bug Bounty statistics tool.☆33Nov 17, 2022Updated 3 years ago
- little scripts of bash stuff that i've found handy.☆16Feb 2, 2019Updated 7 years ago